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Replacement Sheet 

(Illustrating reference characters 60, 69, 70, 71, 84 85 and 90) 

[0043] FIGS. 5 A, 5B, and 5C demonstrate this concept in more detail. FIG. 5A represents 
the Function Bits entries for the [Group #1] Group # 0 60 . As shown, the location of the 
bit bo 61 is measured as xq 69 number of bits away from the start boundary of the random 
number 30. Similarly, the location of the next bit b t 63 is known to the system as xi 
70 number of bits away from die bit bo 69 position. Further, the system can find the 
position of the bit t>2 65 as a bit located exactly in the middle of the random number 
30 consisting of length L. As illustrated in FIG. 5A, if the said random number consists 
of even bits, then the position of the bit b 2 65 is located as L/2 H_bits away from the 
ending boundary. If the said random number contains an odd number of bits then the bit 
fc>2 65 position can be identified as (L+l)/2 71 from the ending boundary. 

[0044] Referring back to column 50 in FIG. 4B, the Group Number entry 57 represents 
the binary Group numeric v alue of 1 and this number picks bo, b|, t>2 ... b p (p = number 
of Function Bits) with each of the individual bit positions corresponding to y 0 , yi, y2» 
y p from pre-defined boundary lines, respectively. This is shown in FIG. 5B under the 
Group # 1 , 80. It should be noted that each of the individual Group or Function Bits does 
not have to be located at a different bit locations. Two or more Group or Function Bits 
can occupy the same bit positions. This is shown in FIG. 5B where the two Function Bits 
b 0 83 and b] 81 occupy the same bit locations as identified by yo 86 or yi 87. Similarly, 
Function Bits b 2 84 and bp 85 can be uniquely identified from the ending boundary of the 
random number 6 x' 30 at the distance of y 2 89 and y p 82 respectively. FIG. 5C shows the 
Group # n, 90 which has allocated 'q' number of Functions Bits in the random number V 
30. Each of the bit locations is determined by the respective distance vector numbers, 
e.g., zo to Zq, similar to the manner as discussed above. 



PACE 2127 " RCVD AT 4/4/2005 12:54:17 AM [Eastern Daylight Time] • SVR:USPTO-EFXRF-1/0 " ONIS:8729306 ■ CSID:1 049 457 1243 - DURATION (mm-ss):07-4ft. 



Apr 03 05 10:07p Shakeel Mustafa 



1-949-457-1243 



P. 3 



Replacement Sheet 

(Illustrating reference characters 101 and 105 as included in paragraph [0045]) 

[0045] FIG. 6 maintains the range of all the possible numeric values of the binary 
numbers (b k , . - - to, bi, b 0 ) resulting from a given set of Function Bits in a tabular form as 
shown in column 100. Each possible binary numeric value is associated with a pre- 
arranged sequence of mathematical or logical functions selected from the function class 
defined in the first pool 101. As illustrated in FIG. 6, a resulting binary value of 0 
indicated by the table entry 103 corresponds to a sequence of mathematical or logical 
functions (fi (x), f 2 (x) ... f n (x)) 105. Similarly, each resulting numeric value of the 
Function Bits uniquely corresponds to a single or plurality of the pre-arranged functions. 
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Re placement Sheet 

(Illustrating reference characters 150, 180 and 190 as included in paragraphs [0048] and 

[0049]) 

[0048] FIGS. 8 A and 8B illustrate an example of a function operation followed by its 
corresponding inverse function operation on a digital information segment of an arbitrary 
length. This relationship is illustrated in 150 . In the presented example, the operation of 
the function giCx) 155 consists of two operators. The first operator R(m) 153 rotates the 
bits contained in the information segment 157 towards the right to an equivalent number 
of bits, 160. In the next step, the second operator 151 adds a binary number n 163 
to the already rotated information segment resulting in an encrypted information segment 
165 consisting of k number of bits. It should be observed that depending upon the type of 
operations performed on the digital information segment the resulting length of the 
encrypted information segment could be more or less than the original segment. This 
difference can be consisted of single or multiple bits. Generally, the digital information is 
processed and exchanged among the communication layers in term of multiple bytes (8 
bits/byte). To ensure that the encrypted information segment is consisted of multiple 
bytes, a padding header followed by a certain number of padding bits is appended. As 
shown in FIG. 8 A, the padding header 167 consisted of 3 bits indicates that how many 
padding bits are inserted to make the total encrypted information segment length to be 
divisible by eight bits or any other number. 

[0049] FIG. 8B illustrates the operation of the inverse function of gi(x), represented as g^ 1 
(x) 175, on the encrypted information segment 165. The inverse function g" 1 (x) 175, by 
its definition, contains all the necessary operators that can reverse the effects of the 
operations performed by the function gi(x). In this sense, the inverse function g' 1 (x) 175 
is consisted of two operators; the first operator 173 represents a subtraction of number n 
while the second operator 171 represents a left rotation equivalent to x ra number of bits. 
As the encrypted information segment is processed for decryption the first step is to 
remove the padding header 167 along with the associated bits. Next, the operator 173 
subtracts the number % n 180 from the encrypted information segment 165. As a final step 
the operator L(m) 171 rotates the said segment towards the left to an equivalent of rn* 
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bits 190. The resulting information segment 185 is exactly the same as the information 
segment 157 before the encryption process. It is evident from this example that the 
contents of any information segment consisted of any arbitrary length remains unchanged 
first by the operation of the function gi(x) and then by the operation of its inverse 
function g" 1 00- 
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(Illustrating reference characters 213, and 225 with proposed amendments for further 

clarification) 

[0054] Referring back to FIG. 9, which illustrates that the remote ^B' 5 uses the resulting 
binary numeric value and refers to the table shown in FIG. 6 to identify the corresponding 
functions (f| (x), f 2 (x) ... f n (x) ) belonging to the first function pool. Once the functions 
in the first function pool are identified the corresponding functions in the second pool (gi 
(x) ,..g n (x) ) can be easily identified from the table given in FIG. 3. As it is evident a 
person skilled in the art may choose another way to collaborate the functions in the first 
pool being used to encrypt random number with the functions in the second pool being 
used to encrypt data segments. For example, one may use the information contain in the 
random number or encrypted random number e.g.. Group and Function Bits, to choose 
the functions from the second pool which are used to encrypt data segments. 
Nevertheless, any of these techniques fall under the scope of the presented invention. 
The information segment ^D x 205 can either contain system or the user's information. As 
will be discussed later in the section, the system information is typically used to exchange 
a modified or updated set of rules associated with Group Bits, Function Bits, 
mathematical and logical functions, etc. The distinction between user's information and 
system information is made through the use of a single inserted bit 210. A bit value of 0 
represents a user's information segment whereas a bit value of 1 means a system 
information segment. The plurality of functions identified in the second pool (gj (x) ...g n 
(x) ) operate on the information segment ["S"] 'D* as shown in step 215 and produce the 
first encrypted information segment Dg 220. 

[0055] The plurality of the functions identified from the first function pool (fj (x), fi (x) 
... f n (x) ) operate on the random number V 207, modify the characteristics of the said 
random number and produce another number y 217. The modified random number y 
217 replaces the previous random number V 207 and is processed as the new seed 
random number for the next encryption cycle. It should be noted that the modified 
random number y 217 is not exchanged between the host A' 1 and the remote 5. As 

1 
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follows from the preceding discussion, it is necessary that both the said host and the 
remote must agree in advance about the number of encryption cycles to be performed. 
This information can be mutually configured in a number of ways. In one embodiment, a 
pre-determined number of bits located at predetermined bit positions within the modified 
random number V 217, similar to Function or Group Bits, can be mutually reserved. As 
shown in FIG. 7, the numeric binary value of the pre-selected number of bits (b e . . . b2, 
bi, b 0 ) listed in column 117 uniquely corresponds to a number N T in column 118 which 
determines the total number of encryption cycles to be performed. Since the number *y* 
217 by itself is not exchanged over the communication channel it makes it extremely 
difficult for a hacker to guess about the number of encryption rounds performed on any 
given information segment. As it is evident, a person skilled in the art may choose 
another way to collaborate this information at the both said host and the remote. 
Nevertheless, any of these techniques falls under the scope of the presented invention. 

[0056] Referring back to FIG. 9, the encrypted data segment Dg 220, is further encrypted 
by a sequence of "Intermediate Function" as illustrated bv block 225. This encryption 
procedure is repeated for Nt 213 number of times. Each new encryption cycle uses the 
modified random number produced from the previous routine as a seed random number. 
The corresponding numeric value of the Group and Function Bits select a new set of 
unique functions from the first and second function pools. The functions identified in the 
first function pool encrypt the random number further produced from the previous 
encryption cycle. The corresponding functions identified in the second function pool 
further encrypt the information segment. Th e se encryption rounds arc? repeated as 
illustrated in st e p 221 . As illustrated in the FIG. 9 the last encryption round, N T 213, 
produces the seed random number V 219. The corresponding numeric value derived 
from the Group and Function Bits of the said seed number chooses a sequence of 
functions, ui(z)..Uw(z) from the first pool. The corresponding functions identified from 
the second pool operate on the already encrypted information segment Dgh 230 in step 
235 to produce a further encrypted information segment resulting as Dgh V 240. It should 
be noted that any further encryption process stops after the execution of N T 213 number 
of encryption rounds. A padding header with the appropriate number of padding bits is 
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appended, if necessary, to convert the said encrypted information segment so it is 
divisible by a desired number. The resulting segment is passed down to the lower 
communication layers for a reliable delivery to said host 'A' 1. The packet 300 carries the 
encrypted segment Dgh V with the appropriate header (H) and trailer (T) appended by the 
lower communication layers for proper delivery. As pointed out earlier it is the 
responsibility of the lower communication layers to guarantee the transmission of packet 
300 to its final destination host 'A' 1 . 



3 
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(Illustrating reference characters 309, 320, and 321 with proposed amendments for 

further clarification)) 

[0057] Now referring to the host side of FIG. 9, the host 'A* 1 receives the random 
number V contained in packet 200. During the information delivery process the lower 
level communication layers ensure that the contents of the packet are unchanged. As the 
said random number is processed it yields the exact same Group Number resulting from 
the Group Bits as produced by the remote 5. The Function Bits and their 
corresponding numeric value are also the same as well. Since the resulting binary 
numeric value is the same, the functions (fj (x)> f 2 (x) ... f n (x)) selected from the first 
pool and the corresponding functions (gi (x) ...g,, (x)) identified from the second pool will 
also be the same as used by remote X B' 5 in its first encryption cycle. Remote % B % 5 
identifies the inverse functions corresponding to each of the functions selected from the 
second pool. The resulting sequence of identified inverse functions (g~ l . . . g" n ) are 
tabulated in the opposite order (g"" . . . g" 1 ) 321 in a decrypting function table 325. The 
selected functions from the first pool (ft (x), f 2 (x) ... f n (x)) operate on the random 
number *x x 207 to produce the next number % y % 217. It should be noted that the resulting 
number *y* 217 is exactly the same on the both host *A" 1 and remote S B % 5 sides since it 
results from the same operations performed on the random number V 207. 

[0058] As explained earlier with reference to FIG. 7, the host *A % 1 also determines the 
number N T 329 exactly through the same procedure as used by the remote % rV 5. The 
both said host and the remote come up with the same number Nt, since they both use 
exactly the same bits (b e . . . b2 bi bo) value from the number *y* 217 and also consult the 
identical table. In the next round of the encryption cycle the number 'y* 217 is used as a 
seed random number. The corresponding Group and the Function Bits are identified and 
then subsequently the sequence of functions from the first and the second pool are 
identified. The inverse of each of the functions identified in the second pool are appended 
in the decryption function table 325 in the opposite order. The sequences of inverse 
functions that aTe identified through this operation are assembled in the "Inverse 
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Intermediate Function" block 320. The block 320 cont ains the inverse functions of all the 
functions identified and included in the "Intermediate Functions" block 225, but are 
arranged in the opposite order. The same procedure is repeated for N T times and at the 
end of each round the resulting inverse functions are identified and tabulated in the 
decryption function table 325. Although no information segment has been received yet 
from remote 'B' 5 foT decryption, but the inverse functions populated in the decryption 
function table 325 are ready to perform an exact opposite sequence of operations on any 
digital information segment that may receive from the remote "IT 5. 

[0059] As the part of the last encryption cycle the original seed random number V 207 is 
changed to a number % z 219 which is also exactly the same number z 219 as resulted at 
remote 5. This implies that host 'A* 1 will also select the same sequence of functions 
(ui(z)... u w (z)) and the corresponding inverse functions in the opposite order (v" w ...v" ) 
309 which will be tabulated accordingly in the decryption function table 325. 



2 
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Replacement Sheet 

(Illustrating reference characters 430, 435, 505, 5 10 and 555 with the underlined 
proposed amendments for further clarification) 

[0069] With the use of the extension bit, the said length field can be extended to include 
multiple bytes. It should be noted that the protocol 400 can contain any number of 
random bits padded after the data bytes. This provision ensures that the length of the 
protocol 400 can consist of any arbitrary number of bits that may be more suitable for the 
encryption process. The location of the first Group Number bit, Go 420, corresponds to a 
bit distance of do (defined in number of bits) from a specific boundary line of a random 
number. For example, the bit field 41 5 can be used to define a reference boundary line. A 
bit value of 1 in the said field may be attributed to the starting boundary line located at 
the right end of the random number, whereas a value of 0 indicates that d.sub.0 is 
measured in bits from the left end of the random number. The field 425 represents the 
extended bit field concept. This means that if the value of the said field is 0 then the 
present d.sub.0 field is extended to include the next 7 bits of the next adjacent byte to 
represent its value. This simple technique ensures that if the do field needs to represent a 
large number then it can span to include multiple numbers of the next adjacent bytes. The 
receiving end accordingly identifies the end of a particular field by finding a value of 1 in 
the bit field 425. In a similar fashion, all the Group Bits (Gi) 430 to G n 435 locations are 
identified by the corresponding d 0 , di . . . dn, values, respectively. The CRC field 440 
may be included to provide an extra protection for data integrity, even though it is the 
responsibility of the transport layer and the layers below to ensure that the data has been 
properly delivered. 

[0070] The next protocol format 450 is used to send the exact location of the binary 
Function Bits inside a random number exclusively used by a particular Group Number. 
The field 455 presents the instruction mnemonic reserved for this purpose. The field 460 
identifies the particular Group Number for which the corresponding binary Function Bits 
location in a random number needs to be identified. The length field 410 represents the 
total data bytes to be followed. As mentioned earlier, any number of padded bits can be 
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appended after the data bytes to make it more suitable for encryption. In the next field, xo 
represents the distance in bits that can be used to identify the position of the function bit 
bo 465 in any random number. Similarly, the following fields from xi to Xk represent the 
bit distance for the corresponding Function Bits bi 470 to bk 475, respectively. 

[0071] The protocol format 480 provides a way to exchange information about the 
Function Bits binary numeric value and the associated logical or mathematical function to 
be performed on an information segment. The field 485 presents a unique instruction for 
this purpose. The length of field 490 shows the number of data bytes to be followed. The 
field Bl 495 identifies the Function Bits binary numeric value with the associated 
number value for the function fi(x) which is included in the next field 500> Similarly, all 
the Function Bits binary numeric values, for example, Bn 505 and the associated 
function s, V y (x) 510 with e ach of these values can be mutually updated and modified 
between a host and a remote. As will be appreciated by those skilled in the art, a number 
of different instructions, protocols format and methods can be employed to exchange any 
type of configuration parameters, consistent with the concepts and teachings of the 
present invention. 

[0072] The packet 600 can contain any type of protocol format in it. A single bit field 550 
is appended with the value of 1 to indicate that the packet 600 carries system information 
and not user's data. The field 555 represents the instruction type that the packet 600 
carries As discussed with reference lo FIGS. 9 and 10, the encryption functions 610 
operates on packet 600 and the resulting packet 650 does not disclose any indication to an 
eavesdropper that the said packet contains user's information or system information. On 
the receiving side, the appropriate decryption functions are performed to restore the 
system information packet along with its bit value of 1 in the field 550. The receiving end 
processes the system packet accordingly by identifying the instruction mnemonics. 



2 
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Replacement Sheet 

(Amended to include the reference of the New FIG. 9A under paragraph [0026]) 
BRIEF DESCRIPTION OF THE DRAWINGS 

[0016] The invention will be better understood with its objectives when consideration is 
given to the following detailed description thereof. Such a description makes reference to 
the annexed drawings wherein: 

[0017] FIG. 1 illustrates a host which communicates to a plurality of remote devices 
through unsecured communication channels. 

[0018] FIG. 2 presents a typical communication session between a host and remote based 
on the techniques presented in this invention. 

[0019] FIG. 3 illustrates an example of a plurality of mathematical or logical functions 
defined in the first and second function pools with a unique one-to-one relationship. 

[0020] FIG. 4A shows a variable size random number within a certain bit length range 
containing a predetermined number of bits that are located at pre-determined and specific 
locations within the said random number, representing Group Bits, with respect to the 
defined boundaries. 

[0021] FIG. 4B is a table representing the numeric values of Group Bits, the 
corresponding number of Function Bits assigned, and their pre-determined and specific 
locations within the said random number. 

[0022] FIG. 5A, 5B and 5C illustrate the exact position of the specific and individual 
Function Bits belonging to a particular Group Number from a well defined start or ending 
boundaries. 

[0023] FIG. 6 is a table showing all the possible numeric Function Bits values along with 
their corresponding association with the sequence of logical and mathematical functions 
belonging to the first function pool. 

[0024] FIG. 7 shows a table which represents the relationship between a set of binary 
numbers and the total number of rounds of encryption to be performed. 

[0025] FIGS. 8A and 8B illustrate an example of a function operation and its inverse 
function operation on an information segment. 

[0026] FIG. 9 and 9A depict the encryption technique using the random number and a set 
of logical and mathematical functions. 
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[0027] FIG. 10 illustrates the decryption technique utilizing the random number and the 
inverse logical and mathematical functions. 

[0028] FIG. 11 shows exemplary frame formats that can be used to exchange 
configuration parameters and system information between a host and a remote processor. 
[0029] FIGS. 12A & B illustrate a transparent and non-transparent means of exchanging 
a random number between a host and a remote processor. 

[0030] FIG. 13 shows a method for diffusing the individual bits of information belonging 
to a password segment into an arbitrary binary bit segment. 

[0031] FIG. 14 shows a table used by the mapping algorithm to diffuse the individual bits 
of information in a password segment. 
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Response to Objection 4 of the Office action:- For the clarification of "Repeating the 
Encryption Rounds" 

The underlined Text to be inserted between paragraphs [0056] and [0057] of the 
original submitted specification: 

FIG. 9A further illustrates the procedure as discussed in reference to FIG. 9 for repeating 
the rounds of encryption. As illustrated, the random num ber c x* 207 is used to uniquely 
identified Group and Function Bits, Based on the numeric bit value as c alculated from the 
identified Function Bits (xv..,x? xc j) a single or pluralit y of functions (f\(x) ...f n (x)lare 
identified from the first pool. As mentioned, the said functions are used to operate on the 
said random number *x ? 207 to encrypt the said random number tha t further enhances its 
randomness characteristics. The corresponding functions (gi(x) ... g n (x)) 215 c an be 
identified through a tabular relation established as illustrated in F IG. 3 or by any other ^ 
As it is evident a person skilled in the art may choose another w ay to collaborate the 
functions being used in the first pool to encrypt random number w ith the functions in the 
second pool used to encrypt data segments. Nevertheless, any of the these techniques fall 
under the scope of the presented invention. 

Referring back to 9 A. the random number 6 x' 207 encrypted bv th e function^ (fi(xl ,.,fn 
of the first pool yields to another random number V 217. Simi larly, the digital data 
segment 205 inclusive with the single bit 210 is encrypted by (g ^ ... e r (xY\ 215 to yield 
the encrypted data segment D F 220. 

The block 204 represents a single round of encryption on the random nu mber with a 
corresponding single encryption round that yields the first encrypted data segment D„ 
220. Similarly, in the next encryption round as indicated bv the bloc k 206. the Group and 
Function Bits are identified and depending upon the calculated n umeric value of the bit 
set (Vr) . v? V j Vr O the functions set (i iM . . . im/vYt from the first pool are identified . The 
corresponding functions in the second pool fkifDo) ...k m (D P )) 222 are id entified to 
perform a second round of encryption on the encrypted data se gment D P 220 from the 

1 
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previous rou nd to produce D P v 224. The random number V is further encrypted by the 
functions set CuM ... in.fyV> to produce another random numb er *w* 218. With the 
similar procedure, the block 223 indicates intermediate rounds of encryption being 
performed on the encrypted random number from the previous rounds. Similarly, the 
block 225 indicates the intermediate encryption rounds performed on the da ta segments 
already encrypted from the previous rounds. 

The resulting random number *z' 219 is used as the seed random number for the last 
encryption round as indicated bv the block 208. The encrypted s epment D^v 226 is 
produced after performing the intermediate rounds of encryption as in dicated bv the 
block 225. The functions set (u ^ (z) l yfzV) belonging to the first pool uniquely identifies 
the functions set belonging to the second pool to operate on the digital data segment D C kh 
226 as (W D^ ..VwOV ^ 235 to produce 228. Since the num bers of rounds of 

encryption N T 213 are exhausted, the encryption process stops. The fina l encrypted 
digital data segment D P ^ Y 228 is handed over to the lower communicatio n layers which 
add appropriate headers) and trailers) to transmit it to the host pro cessor in the packet 
300. 
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Response to Objection 6:- For the clarification of "First Function Pool" and its 
relation with "Second Function Pool". 

The underlined Text to be inserted in paragraphs [0036] and [0037] of the original 
submitted specification 

[0036] Before a communication session can utilize the encryption techniques discussed 
herein the host 'A' 1 and the remote W 5 define two sets of function pools. As illustrated 
in FIG. 3, the first function pool 21 contains a plurality of functions, e.g., fi(x) to u w (z), 
which may constitute any type of mathematical or logical functions of any complexity. 
The term "anv type of mathematical or logical functions of any com plexity" means that 
the functions selected in the first pool can be handled and proce ssed bv the system 
resources utilized by the host and the remote processors . It is desired that the functions be 
chosen in the first pool in such a way that when the said single or plurality of functions 
are operated on a random number V they yield a higher degree of randomness in the said 
random number. The order or the sequence in which the functions or orga nized or listed 
in the first pool depends on the numeric value resulting from the G roup and Function Bits 
after each round of encryption on the random number. 

[0037] The second function pool 23 contains another class of plurality of functions, e.g., 
e.g., gi(x) to v w (z), with the criteria such that there exists a unique inverse function for 
each of the functions defined in the second pool. FIG. 3 shows a tabic illustrating the 
functions defined in the second pool. As illustrated, functions defined in the first pool 21 
do not have any correlation with the functions 25 defined in the second pool 23. In other 
words, the sequence of functions that is assembled to populate the fir st pool can be the 
same or completely different from the sequence of functions 25 in the sec ond pool 23. In 
a preferred embodiment, it is recommended that the defined functions 2 5 in the second 
pool 23 should be independently chosen and tabulated, and should no t have any 
dependency on the order of the functions chosen in the first p ool 21, Every function 25 
defined in the second pool 23 has one to one mapping and uniqu e correspondence to its 
counterpart inverse function 27, For example, if a function 4 g i' operates on a digital 

1 
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information segment of an arbitrary leng th 'DA it changes the contents of the said 
segment yielding another se g ment 'D Y \ If its counter part inverse function 'g 1 operates 
on D Y . bv its definition, it will restore the origina l digital information segment P x . FIG. 3 
illustrates a range of function defined f gi to v^ ) in the second pool with the condition that 
every function defined there must contain its inverse function, i.e., g" 1 to y w lL By 
definition, the result of a function can be restored to its original value through its inverse 
function. Mathematically speaking, a function H(x)=y has its inverse function (H.sup.-l) 
if H.sup.-l(y)=x. The common examples of reversible functions are addition, with its 
inverse as subtraction; right rotation function with its inverse as left rotation function, etc. 
The solutions to linear and polynomial equations can also be categorized as reversible 
functions only if a predetermined unique solution (single root of the equation) is chosen 
at both sides. The functions defined in the second pool can also be consist of any type of 
mathematical or logical functions of any complexity with the condition that there must 
exist an inverse function for every function defined in the said pool. Each of the function 
defined in the first pool uniquely correspond to a function defined in the second pool. In 
other words, the order in which these functions need to be pl aced in the first pool can be 
determined through the numeric outcomes of the Group an d Function Bits after each 
round of encryption. The numeric outcomes of the Group and Function Bits resulting 
after each round of encryption can be used to determine the order in which the functions 
in the second pool are laid out. It is recommended to define another set o f Group and 
Function Bits that exclusively determine the order in which the functions 25 defined in 
the second pool 23 are laid out. As mentioned earlier that the order i n which the functions 
in the first pool 21 are laid out can be the same or entirely different in w hich the functions 
25 in the second pool 23 are laid out 



2 
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